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Abstract — Nowadays, in net banking sector they use 2PC protocol. But, it is problematic for single site 
failures. We have used the formal model of distributed commit protocols in the process algebra mCRL2. We 
applied this method to the Three-Phase Commit protocol and proved that it is erroneous for simultaneous site 
failures. For the security of transaction SOAP protocol is used. In this, user will enter their user id, password 
and one-time password for accessing their account. They can view all their transactions across all branches of 
Net Bank locations online and do transactions within the bank network. By using this, it is possible to make the 
transaction more fast and can reduce interruption. It will also protect the WS-AT (Web Service- Atomic 
Transaction) services. Useful for business applications based on transactional Web Services that require a high 
degree of dependability, security and trust. 
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I. Introduction 

WEB services are Application Programming 
Interfaces (API) or Web APIs that are accessed via 
Hypertext Transfer Protocol (HTTP). It is a 
method of communication between two electronic devices 
over the World Wide Web 

[http://en.wikipedia.org/wikiAVeb_service]. A Web service is 
a software function provided at a network address over the 
web. It has an interface described in a machine-processable 
format (specifically Web Services Description Language, 
known by the acronym WSDL). Other systems interact with 
the Web service in a manner prescribed by its description 
using SOAP messages. This system will reduce the 
interruption because of site failures. In this system, we used 
two protocols. SOAP protocol is used for the secure 
transaction and 3PC protocol for the simultaneous site 
failures [Gudgin et al, 2007]. In bank side, for the security of 
details of the client, Message Authentication Codes (MAC) 
algorithm is used. Also in the client side, while the client type 
his/her account number that time also the account number 
will be encrypted by using MAC algorithm. A MAC is a 
security code that is typed in by the user of a computer to 
access accounts or portals 



[http://www.investopedia.com/terms/m/message- 
authentication-code.asp]. This code is attached to the 
message or request sent by the user. MACs attached to the 
message must be recognized by the receiving system in order 
to grant the user access. MACs are commonly used in 
Electronic Funds Transfers (EFTs) to maintain information 
integrity. The test application is modified so that all messages 
exchanged within each transaction are protected by a message 
authentication code. 

II. Related Works 

The coordination of Web services has been previously 
addressed by Honglei Zhang et al., (2012) in the Trustworthy 
coordination of Web services atomic transaction by using 
2PC protocol. It shows how to avoid naively applying a 
general-purpose BFT algorithm by exploiting the semantics 
of WS-AT operations to reduce the number of Byzantine 
agreements needed to achieve atomic termination of a Web 
Services Atomic Transaction. The PBFT has been discussed 
in Practical Byzantine Fault Tolerance [Castro & Liskov, 
1999]. It says software bugs, operator mistakes, and 
malicious attacks are a major cause of service interruptions 
and they can cause arbitrary behavior, that is, Byzantine 
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faults. In the trustworthy coordination of web services atomic 
transaction for net banking we have described a suite of 
protocols and mechanisms that protect the WS-AT services 
and infrastructure against Byzantine faults. The main 
contribution of this paper is that it shows how to avoid 
naively applying a general-purpose BFT algorithm (i.e., 
totally ordering all incoming requests at the replicated 
Coordinator), by exploiting the semantics of WSAT 
operations to reduce the number of Byzantine agreements 
needed to achieve atomic termination of a Web Services 
Atomic Transaction. 

III. Coordination of Web Services 

In the "Trustworthy Coordination of Web Services Atomic 
Transaction for Net Banking", we use the 3PC (Three Phase 
Commit) protocol [Pallemulle et al, 2008; Honglei Zhang et 



al, 2012]. 3PC prevents blocking situation in the absence of 
communications failures [http://en.wikipedia.org/wiki/Three- 
phase_commit_protocol]. It can be made resilient to 
communications failures, but then it may block. 3PC is 
actually more complex than 2PC protocol, but only 
marginally improves reliability, prevents some blocking 
situations. Because of this, 3PC is not used much in practice. 
The main idea is that becoming certain and deciding to 
commit are separate steps. 3PC ensures that if any operational 
process is uncertain, then no (failed or operational) process 
has committed. So, in the termination protocol, if the 
operational processes are all uncertain, they can decide to 
abort (avoids blocking). 

3.1. Architecture of Proposed System 
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Figure 1 - Architecture Diagram 



IV. Experimental Result 

This system is based on Net Banking. In this, we show how 
to do transaction securely and without interruption. For the 
security we have used one-time password and SOAP protocol 
[Steiner et al, 1996]. When the authorized user types his 
username and password, one-time password will send to their 
email address [http://en.wikipedia.org/wiki/One- 



time_password]. Then he/she needs to type account number, 
card number and password. When the client enters his/her 
account number it will be encrypted by using MAC 
encryption algorithm. And the coordinator will decrypt it 
using MAC decryption algorithm to check whether it is an 
authorized user or not. If it is an authorized user then the 
coordinator will allow the user to do the transaction and if 
not, error message will display. After getting inside the 
account he can do further transactions. Here, SOAP protocol 
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is used for securely transferring the transaction details. So, 
intruders cannot hack the details. For the interruption 
problems we used three replica Web services other than the 
main Web service. Here, 3PC protocol is used, by using 
Byzantine Agreement Algorithm it will check whether Web 
service is active or not. If the Web service is active, it will 
respond with acknowledgement and with that Web service we 
will do the transaction. And if inactive by using Byzantine 
Agreement Algorithm the coordinator will search for other 
replica services and which will respond as active the 
connection will switch to that service using 3PC protocol 
[Zhao, 2007; Zhao, ° 2007A; 

en.wikipedia.org/wiki/Quantum_Byzantine_agreement]. So 
that, the user can does the transactions without any 
interruption. 

Bank can login with the particular username and 
password. It can create account for the user. While the 
account creation we used MAC Algorithm for encrypting the 
details of the user. Bank can also create IFSC code for each 
bank; view the user details and transaction also. 

Coordinator can view all the user details and transactions 
across the banks. He will monitor all the banks activities. 
Coordination also has a username and password. 

V. Results and Discussion 
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New customers give all the information to bank. Bankers 
analyze all the information of the customer. If all the 
information provided is correct then, allow to create the new 
account for the particular customer. 




Allows authorized users to login using their username 
and password. Here the user needs to give their username and 
password. Then the coordinator will generate a one-time 
password to the users email. Using that password user can 
login. 

Account Verification 
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Client need to enter the account number and password. 
After entering the account number and password it will check 
the given details with database. If it is same then the user can 
go to their account. 

Beneficiary Types for Transaction 
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When you need to transfer the fund means first choose 
the transaction type. Two transaction types will be there. 
Either we can select transaction within same bank or 
transaction with other bank. 
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In this we are using three web services other than the 
main web service viz., web service 1, web service2, web 
service3. If any error or attacks is occurring to the main 
service the connection will switch to the web service 1 and so 
on. 

VI. Conclusion 

In this system, we addressed the problem of Trustworthy 
Coordination of Web services atomic transaction for net 
banking. We have used a suite of protocol for security and 
reliability of transaction. The main idea we have introduced 
here is by using the 3PC protocol it is able to reduce the site 
failures. In 2PC protocol with using AES algorithm if any 
error occurring then, it will go back to the first phase 
(Prepared) and will do the Web service searching from 
beginning. But in 3PC, even though any error occurring it 
won't go back. Instead, by using Byzantine Agreement 
Algorithm it will start searching for active Web service. So, it 
will reduce the searching time. 
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